$ rpki-client -vvf rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft File: Q2XRedW3PoqX7eBQXynvAMLWPvk.mft (raw, json) Hash identifier: rxkdRNThy/W+r1rMAJo0ZchkL1q/Js4ERm3W5VEhJ3w= Subject key identifier: 02:A2:0C:F3:F7:BB:50:72:8F:88:C9:0C:53:AA:4B:B8:79:87:FB:D0 Authority key identifier: 43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 Certificate issuer: /CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Certificate serial: 0340 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft Manifest number: 0336 Signing time: Wed 25 Mar 2026 00:42:01 +0000 Manifest this update: Wed 25 Mar 2026 00:42:00 +0000 Manifest next update: Wed 01 Apr 2026 00:42:00 +0000 Files and hashes: 1: Q2XRedW3PoqX7eBQXynvAMLWPvk.crl (hash: 52fGmlu5SXibXB0CEN6Jl9sIV8IqjrquQ9B7V6Aheq0=) 2: E9A9531644D611F0ABB89277C4F9AE02.roa (hash: LjrdfU8qKAjg1tNh6QbLgwWJcFgbeivFBKT0rfsVVGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 832 (0x340) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139555, serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Validity Not Before: Mar 25 00:42:00 2026 GMT Not After : Apr 1 00:42:00 2026 GMT Subject: CN=69c32f59-bde0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:df:6d:93:e8:3d:f7:3f:05:48:21:e5:75:0f: ce:47:d2:5a:be:9d:40:1f:57:39:41:5d:4f:a6:8b: cd:50:4e:1a:ab:39:42:92:bd:71:57:b2:ee:9f:e5: b7:94:c7:d3:85:c0:5f:76:a6:1a:2b:3e:2b:67:f1: fd:ac:d4:6f:4c:ab:4f:db:f5:b0:b9:76:1c:84:e2: e9:89:ca:1a:30:49:ac:9e:68:1a:b9:f7:88:45:15: af:53:46:41:0d:a1:c9:32:31:df:90:bf:f7:71:1d: 21:78:5a:9f:9e:8f:93:d8:a5:26:b5:81:7c:c3:65: fe:de:cc:4b:de:10:16:17:00:7c:01:32:70:95:86: a5:75:cf:ee:b7:7a:b3:54:33:3b:5c:3a:1e:07:90: 69:16:10:5c:21:79:6a:e3:c9:c1:a3:20:bc:e4:11: aa:ae:7c:b0:c7:11:ad:b5:d4:0b:17:d9:44:b3:f5: bb:75:dc:94:90:e8:7a:f1:5f:13:3e:4a:f7:a0:8b: 24:0c:85:58:e8:a9:7f:54:68:5c:0b:13:c1:c1:ad: 64:80:3c:25:31:c2:7a:3d:4c:0e:77:38:de:07:b7: 77:6d:9e:71:5e:8b:46:10:72:da:e9:e4:cf:12:08: 48:a7:cd:f6:2a:09:aa:ed:bf:e9:85:0f:ce:d9:d7: 70:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:A2:0C:F3:F7:BB:50:72:8F:88:C9:0C:53:AA:4B:B8:79:87:FB:D0 X509v3 Authority Key Identifier: keyid:43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:72:6a:fb:d3:f5:68:92:52:d7:75:3d:cb:99:2f:98:8d:0d: 13:d8:c1:6e:2f:1f:f3:51:cb:70:52:ee:cb:87:ec:c7:4f:cd: 48:b0:0f:f5:bb:a7:1f:b5:c0:dd:32:e8:6c:8e:da:64:32:53: bd:72:a6:3b:c1:06:04:ca:77:1e:cd:f2:0a:1a:7b:d1:9f:83: f6:fb:7d:97:ce:d9:c4:04:32:8e:1b:09:fc:21:aa:b0:d7:47: 5a:aa:a0:90:b5:c7:59:d9:fd:c5:7f:db:63:53:a9:b7:bd:1e: a5:2b:3b:f8:a7:64:58:ac:9f:41:e8:ca:0a:a7:c7:43:fd:f5: b4:31:c7:4f:13:27:66:9a:b4:bf:64:75:62:69:13:33:0c:06: 9e:89:46:2b:0c:59:f0:47:3a:3e:5a:9d:b5:82:a4:64:d4:44: 2d:27:84:e3:3b:d9:a8:57:a5:d1:59:94:5e:60:0b:dd:53:af: 95:7b:c6:c6:53:dc:36:2a:ce:c6:da:11:48:b2:9e:c4:ed:9e: 38:63:7e:7e:0f:fd:f0:19:66:de:5e:c5:26:b9:48:d1:e1:ce: 43:96:b1:2e:91:a1:8c:6a:89:84:8d:d5:43:ba:df:be:36:48: 17:39:b8:ac:03:95:39:24:97:0b:f8:b9:89:ba:1e:0f:4b:87: c3:e9:47:78 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk1NTUxMTAvBgNVBAUTKDQzNjVEMTc5RDVCNzNFOEE5N0VERTA1MDVGMjlFRjAw QzJENjNFRjkwHhcNMjYwMzI1MDA0MjAwWhcNMjYwNDAxMDA0MjAwWjAYMRYwFAYD VQQDEw02OWMzMmY1OS1iZGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxN9tk+g99z8FSCHldQ/OR9Javp1AH1c5QV1PpovNUE4aqzlCkr1xV7Lun+W3 lMfThcBfdqYaKz4rZ/H9rNRvTKtP2/WwuXYchOLpicoaMEmsnmgaufeIRRWvU0ZB DaHJMjHfkL/3cR0heFqfno+T2KUmtYF8w2X+3sxL3hAWFwB8ATJwlYaldc/ut3qz VDM7XDoeB5BpFhBcIXlq48nBoyC85BGqrnywxxGttdQLF9lEs/W7ddyUkOh68V8T Pkr3oIskDIVY6Kl/VGhcCxPBwa1kgDwlMcJ6PUwOdzjeB7d3bZ5xXotGEHLa6eTP EghIp832Kgmq7b/phQ/O2ddwawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAKiDPP3 u1Byj4jJDFOqS7h5h/vQMB8GA1UdIwQYMBaAFENl0XnVtz6Kl+3gUF8p7wDC1j75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTU1NS9EQzdEMTQ1QTAy MkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1BvcVg3ZUJRWHludkFNTFdQ dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EyWFJlZFczUG9xWDdlQlFYeW52QU1MV1B2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTU1NS9EQzdEMTQ1QTAyMkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1Bv cVg3ZUJRWHludkFNTFdQdmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjnJq+9P1aJJS13U9y5kvmI0NE9jBbi8f81HLcFLuy4fsx0/NSLAP9bunH7XA 3TLobI7aZDJTvXKmO8EGBMp3Hs3yChp70Z+D9vt9l87ZxAQyjhsJ/CGqsNdHWqqg kLXHWdn9xX/bY1Opt70epSs7+KdkWKyfQejKCqfHQ/31tDHHTxMnZpq0v2R1YmkT MwwGnolGKwxZ8Ec6PlqdtYKkZNRELSeE4zvZqFel0VmUXmAL3VOvlXvGxlPcNirO xtoRSLKexO2eOGN+fg/98Blm3l7FJrlI0eHOQ5axLpGhjGqJhI3VQ7rfvjZIFzm4 rAOVOSSXC/i5iboeD0uHw+lHeA== -----END CERTIFICATE-----Generated at Thu Mar 26 05:17:18 2026 by rpki-client